/*
 *  Copyright 2004 Blandware (http://www.blandware.com)
 *
 *  Licensed under the Apache License, Version 2.0 (the "License");
 *  you may not use this file except in compliance with the License.
 *  You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 *  Unless required by applicable law or agreed to in writing, software
 *  distributed under the License is distributed on an "AS IS" BASIS,
 *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *  See the License for the specific language governing permissions and
 *  limitations under the License.
 */
package com.blandware.atleap.webapp.action.core.user;

import com.blandware.atleap.common.Constants;
import com.blandware.atleap.model.core.User;
import com.blandware.atleap.service.core.UserManager;
import com.blandware.atleap.webapp.action.core.BaseAction;
import com.blandware.atleap.webapp.form.core.UserForm;
import org.apache.commons.validator.GenericValidator;
import org.apache.struts.action.ActionForm;
import org.apache.struts.action.ActionForward;
import org.apache.struts.action.ActionMapping;
import org.apache.struts.action.ActionMessage;
import org.apache.struts.action.ActionMessages;
import org.springframework.orm.ObjectOptimisticLockingFailureException;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

/**
 * <p>Enables/disables user
 * </p>
 * <p><a href="ChangeUserStatusAction.java.html"><i>View Source</i></a></p>
 * <p/>
 *
 * @author Sergey Zubtsovskiy <a href="mailto:sergey.zubtsovskiy@blandware.com">&lt;sergey.zubtsovskiy@blandware.com&gt;</a>
 * @version $Revision: 1.7 $ $Date: 2008/04/29 17:51:49 $
 * @struts.action path="/core/user/changeStatus"
 * name="userForm"
 * scope="request"
 * validate="false"
 * roles="core-user-changeStatus"
 * @struts.action-forward name="listUsers"
 * path="/core/user/list.do"
 * redirect="true"
 * @struts.action-forward name="unsatisfiable"
 * path="/core/user/list.do"
 */
public final class ChangeUserStatusAction extends BaseAction {
	/**
	 * @param mapping  The ActionMapping used to select this instance
	 * @param form     The optional ActionForm bean for this request (if any)
	 * @param request  The HTTP request we are proceeding
	 * @param response The HTTP response we are creating
	 * @return an ActionForward instance describing where and how
	 *         control should be forwarded, or null if response
	 *         has already been completed
	 */
	public ActionForward execute(ActionMapping mapping, ActionForm form,
	                             HttpServletRequest request, HttpServletResponse response) throws Exception {

		UserForm userForm = (UserForm) form;

		String userName = userForm.getName();
		if ( GenericValidator.isBlankOrNull(userName) ) {
			if ( log.isWarnEnabled() ) {
				log.warn("Missing user name. Returning to list.");
			}
			return mapping.findForward("listUsers");
		}

		if ( userName.equals(request.getRemoteUser()) ) {
			// currently logged in user cannot be deleted
			saveToken(request);
			ActionMessages errors = new ActionMessages();
			errors.add("loggedUserCannotDisable", new ActionMessage("core.user.form.changeStatusDisabled"));
			saveErrors(request, errors);
			return mapping.findForward("listUsers");
		}

		UserManager userManager = (UserManager) getBean(Constants.USER_MANAGER_BEAN);
		User user = userManager.retrieveUser(userName);

		if ( user == null ) {
			// content page not found. it might be deleted by someone else
			ActionMessages errors = new ActionMessages();
			errors.add("userNotFound", new ActionMessage("core.user.errors.notFound"));
			saveErrors(request, errors);
			return mapping.findForward("listUsers");
		}

		String status = request.getParameter("status");
		boolean alreadyEnabled = user.getEnabled() != null ? user.getEnabled().booleanValue() : false;
		boolean enabled = true;
		if ( !"enabled".equalsIgnoreCase(status) ) {
			enabled = false;
		}

		try {

			if ( (alreadyEnabled && !enabled) || (!alreadyEnabled && enabled) ) {
				user.setEnabled(Boolean.valueOf(enabled));
				userManager.updateUser(user);
			}
		} catch ( ObjectOptimisticLockingFailureException e ) {
			// content page was updated or deleted by another transaction
			ActionMessages errors = new ActionMessages();
			errors.add("updateFailed", new ActionMessage("core.user.errors.updateFailed"));
			saveErrors(request, errors);
			return mapping.findForward("listUsers");
		}
		return mapping.findForward("listUsers");
	}
}